103.109.139.2 - IPInfo

基本信息:

城市(city): Amravati

省份(region): Maharashtra

国家(country): India

运营商(isp): Windsor Internet Private Limited

主机名(hostname): unknown

机构(organization): Windsor Internet Private Limited

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	"Account brute force using dictionary attack against Exchange Online"	2019-08-06 09:05:43

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 103.109.139.2
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 54212
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;103.109.139.2.			IN	A

;; AUTHORITY SECTION:
.			281	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019062600 1800 900 604800 86400

;; Query time: 422 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jun 27 01:31:17 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 2.139.109.103.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 2.139.109.103.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
106.12.207.92	attackbotsspam	Invalid user myo from 106.12.207.92 port 48016	2020-07-25 18:20:47
113.161.48.135	attack	Automatic report - Port Scan Attack	2020-07-25 18:47:56
51.255.28.53	attackbotsspam	Jul 25 12:21:58 lnxded63 sshd[17510]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.255.28.53	2020-07-25 18:26:21
74.92.13.89	attack	Jul 25 03:39:00 XXX sshd[31852]: Invalid user admin from 74.92.13.89 Jul 25 03:39:01 XXX sshd[31852]: Received disconnect from 74.92.13.89: 11: Bye Bye [preauth] Jul 25 03:39:01 XXX sshd[31854]: Invalid user admin from 74.92.13.89 Jul 25 03:39:02 XXX sshd[31854]: Received disconnect from 74.92.13.89: 11: Bye Bye [preauth] Jul 25 03:39:03 XXX sshd[31867]: Invalid user admin from 74.92.13.89 Jul 25 03:39:03 XXX sshd[31867]: Received disconnect from 74.92.13.89: 11: Bye Bye [preauth] Jul 25 03:39:04 XXX sshd[31869]: Invalid user admin from 74.92.13.89 Jul 25 03:39:04 XXX sshd[31869]: Received disconnect from 74.92.13.89: 11: Bye Bye [preauth] Jul 25 03:39:05 XXX sshd[31871]: Invalid user admin from 74.92.13.89 Jul 25 03:39:05 XXX sshd[31871]: Received disconnect from 74.92.13.89: 11: Bye Bye [preauth] Jul 25 03:39:06 XXX sshd[31873]: Invalid user admin from 74.92.13.89 Jul 25 03:39:06 XXX sshd[31873]: Received disconnect from 74.92.13.89: 11: Bye Bye [preauth] Jul 25 03:39........ -------------------------------	2020-07-25 18:48:32
200.57.192.24	attack	Port scan on 1 port(s): 23	2020-07-25 18:10:30
191.8.164.172	attackspambots	2020-07-25T00:55:56.205064server.mjenks.net sshd[3493973]: Invalid user jun from 191.8.164.172 port 41550 2020-07-25T00:55:56.210820server.mjenks.net sshd[3493973]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.8.164.172 2020-07-25T00:55:56.205064server.mjenks.net sshd[3493973]: Invalid user jun from 191.8.164.172 port 41550 2020-07-25T00:55:58.323450server.mjenks.net sshd[3493973]: Failed password for invalid user jun from 191.8.164.172 port 41550 ssh2 2020-07-25T00:59:38.628686server.mjenks.net sshd[3494312]: Invalid user www from 191.8.164.172 port 52198 ...	2020-07-25 18:21:23
37.139.16.229	attack	Invalid user aip from 37.139.16.229 port 52375	2020-07-25 18:38:38
103.89.89.178	attackbotsspam	Jul 25 09:44:16 debian-2gb-nbg1-2 kernel: \[17921572.363147\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=103.89.89.178 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=239 ID=36568 PROTO=TCP SPT=58818 DPT=4034 WINDOW=1024 RES=0x00 SYN URGP=0	2020-07-25 18:16:22
47.22.82.8	attackspambots	Jul 25 07:19:43 ajax sshd[9084]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=47.22.82.8 Jul 25 07:19:45 ajax sshd[9084]: Failed password for invalid user ben from 47.22.82.8 port 52154 ssh2	2020-07-25 18:37:07
118.27.11.168	attackbots	Jul 20 00:50:27 v26 sshd[16592]: Invalid user sandt from 118.27.11.168 port 53390 Jul 20 00:50:27 v26 sshd[16592]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.27.11.168 Jul 20 00:50:29 v26 sshd[16592]: Failed password for invalid user sandt from 118.27.11.168 port 53390 ssh2 Jul 20 00:50:29 v26 sshd[16592]: Received disconnect from 118.27.11.168 port 53390:11: Bye Bye [preauth] Jul 20 00:50:29 v26 sshd[16592]: Disconnected from 118.27.11.168 port 53390 [preauth] Jul 20 01:04:29 v26 sshd[18692]: Invalid user art from 118.27.11.168 port 33650 Jul 20 01:04:29 v26 sshd[18692]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.27.11.168 Jul 20 01:04:31 v26 sshd[18692]: Failed password for invalid user art from 118.27.11.168 port 33650 ssh2 Jul 20 01:04:32 v26 sshd[18692]: Received disconnect from 118.27.11.168 port 33650:11: Bye Bye [preauth] Jul 20 01:04:32 v26 sshd[18692]: Disconnecte........ -------------------------------	2020-07-25 18:26:55
71.220.52.14	attackspambots	TCP (SYN) 71.220.52.14:37309 -> port 22, len 44	2020-07-25 18:28:12
114.67.85.74	attack	Invalid user alan from 114.67.85.74 port 36690	2020-07-25 18:33:56
106.75.52.43	attackspambots	2020-07-25T10:31:50+0200 Failed SSH Authentication/Brute Force Attack. (Server 10)	2020-07-25 18:22:24
51.79.145.158	attackspambots	2020-07-24 UTC: (83x) - 15,18,admin(4x),adminagora,adv,anwar,backup,black,cgl,chaowei,chris,cmartinez,core,data,dileep,dragos,efrain,eli,esc,family,fd,ftpuser(2x),ftpusr,gjl,gmodserver2,gonzalo,hdp,hk,hlg,jacopo,jehu,jenny,jse,kaushik,kiwiirc,kl,leone,lhp,list,lk,marlon,mary,mdm,neha,nick,nvm,oracle,orb,parking,pch,pig,postgres,privoxy,public,python,rt,sk,suneel,taro,tct,teamspeak-server,telefon,temp,templates,testtest,thai,tom,ubuntu,uftp,uploader,user3,uyt,vbox,vnptco,wsk,wxl,yaroslav,zhanghw,zwt	2020-07-25 18:40:40
106.124.141.108	attackspambots	Invalid user demo from 106.124.141.108 port 40125	2020-07-25 18:43:18

最近上报的IP列表

60.3.222.2	164.170.207.6	4.251.107.182	12.132.253.139
105.161.173.206	217.252.108.203	126.22.213.187	216.255.162.225
104.96.178.214	23.95.174.154	242.225.151.104	175.13.123.1
129.109.10.66	200.119.96.148	12.217.18.111	138.197.181.100
116.92.236.137	80.5.23.201	14.249.161.76	163.188.109.106